Skip to main content

Celonis Product Documentation

Managing OAuth consent

OAuth (Open Authorization) is an open standard protocol for access delegation. Granting OAuth via tokens consent enables other parties to access protected resources without sharing user credentials with the requesting party. OAuth also provides an enterprise-grade alternative to application keys and API keys for integrating with the Celonis Platform.

The advantage of using OAuth tokens include that they're short lived and expire automatically and that you can give them a clearly defined set of permissions, rather than them inheriting all permissions from a user.

Granting OAuth authorization

Authorizing a client application enables it to perform certain actions on your behalf for either 15 minutes (for shorter interactions) or a maximum of 30 days, with re-authorization needed after that period. These actions are restricted to the ones listed when performing the authorization, with the client holding no other permissions. When authorization is not granted, the client can't perform the intended tasks.